Notorious crooks broke into a company network in 48 minutes. Here’s how.

ReliaQuest, a cyber security firm based in Florida, US, has revealed it tracked a 22% reduction in ‘breakout time’, the period between an attacker gaining access to a network and beginning to move laterally across it, during which they seek to expand their access.
In one incident in December, it took the attackers just 48 minutes to achieve this, having sent a spate of phishing emails to around 12 employees within a firm, then used the Microsoft Teams platform to communicate with the employees, posing as IT support.
The company believes the attack was the work of the Black Basta ransomware group.
The speed of such attacks is increasing as defenders become better at thwarting initial access attempts, meaning those on the offensive must work faster to gain and maintain access.

Fast Feed